CVE-2026-23136

MEDIUM EPSS 19.7%
Published Feb 14, 20264mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 14, 2026 4mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osd_fault() When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate state machine, largely independent of the messenger's state. If a connection is lost mid-payload or the sparse-read state machine returns an error, the sparse-read state is not reset. The OSD client will then interpret the beginning of a new reply as the continuation of the old one. If this makes the sparse-read machinery enter a failure state, it may never recover, producing loops like: libceph: [0] got 0 extents libceph: data len 142248331 != extent len 0 libceph: osd0 (1)...:6801 socket error on read libceph: data len 142248331 != extent len 0 libceph: osd0 (1)...:6801 socket error on read Therefore, reset the sparse-read state in osd_fault(), ensuring retries start from a clean state.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
19.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥6.6  –  <6.6.121
linuxlinux_kernel*≥6.7  –  <6.12.66
linuxlinux_kernel*≥6.13  –  <6.18.6
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 4

  • git.kernel.org https://git.kernel.org/stable/c/10b7c72810364226f7b27916ea3e2a4f870bc04b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/11194b416ef95012c2cfe5f546d71af07b639e93
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90a60fe61908afa0eaf7f8fcf1421b9b50e5f7ff
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e94075e950a6598e710b9f7dffea5aa388f40313
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/10b7c72810364226f7b27916ea3e2a4f870bc04b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/11194b416ef95012c2cfe5f546d71af07b639e93
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90a60fe61908afa0eaf7f8fcf1421b9b50e5f7ff
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e94075e950a6598e710b9f7dffea5aa388f40313
    Patch